Updated: Cligs Got Hacked - Restoration from Backup Started

Late last night/early this morning, a security hole in the cligs editing functionality was discovered and was exploited by a malicious attacker. The attack edited most URLs on Cligs to point to a single URL hosted on freedomblogging.com. The attacker’s IP address appears to have from Canda.

I’ve identified the hole and disabled all cligs editing for now and I’m restoring the URLs back to their original destination states. However, the most recent backup is from early May, and so we may have lost all URLs created since then. My daily backups with my host were turned off for some reason, which is another story.

The restoration will take a long time - it’s millions of URLs that have to be individually restored - and so you may not see your proper links till tomorrow.

Update 2009-06-16 at 2044: A big update worthy of its own post here.

Update 2009-06-15 at 1156: It’s about 2.2 million URLs that got affected.

I’ll update this blog as the situation progresses.

Leave a Reply